Lucene search
K

329 matches found

OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-101-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.6AI score0.08635EPSS
Exploits0References2
0day.today
0day.today
added 2022/06/21 12:0 a.m.477 views

Mitel 6800/6900 Series SIP Phones Backdoor Access Vulnerability

Mitel 6800/6900 Series SIP Phones excluding 6970 and Mitel 6900 Series IP MiNet Phones have a flow to spawn a telnet backdoor on the device with a static root password enabled. Affected versions include Rel 5.1 SP8 5.1.0.8016 and earlier, Rel 6.0 6.0.0.368 to 6.1 HF4 6.1.0.165, and MiNet 1.8.0.12...

7.2CVSS0.5AI score0.00739EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/06/20 12:0 a.m.474 views

Mitel 6800/6900 Series SIP Phones Backdoor Access

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2022-021 Product: Mitel 6800/6900 Series SIP Phones excluding 6970 Mitel 6900 Series IP MiNet Phones Manufacturer: Mitel Networks Corporation Affected Versions: Rel 5.1 SP8 5.1.0.8016 and earlier Rel 6.0 6.0.0.368 to 6.1 HF4...

7.2CVSS0.5AI score0.00739EPSS
Exploits4
Cvelist
Cvelist
added 2022/03/30 4:3 p.m.25 views

CVE-2021-23850 Buffer Overflow vulnerability in the recovery image telnet server

A specially crafted TCP/IP packet may cause a camera recovery image telnet interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload...

6.8CVSS7.7AI score0.01466EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.27 views

Mageia: Security Advisory (MGASA-2020-0169)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.8AI score0.74513EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2022/01/19 12:0 a.m.40 views

RHEL 7 : telnet (RHSA-2022:0158)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:0158 advisory. Telnet is a popular protocol for logging in to remote systems over the Internet. The telnet-server packages include a telnet service that supports...

10CVSS8AI score0.74513EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2022/01/18 9:16 a.m.14 views

telnet-server: no bounds checks in nextitem() function allows to remotely execute arbitrary code

A vulnerability was found where incorrect bounds checks in the telnet server’s telnetd handling of short writes and urgent data, could lead to information disclosure and corruption of heap data. An unauthenticated remote attacker could exploit these bugs by sending specially crafted telnet packet...

10CVSS7.9AI score0.74513EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2022/01/04 8:38 a.m.7 views

telnet-server: no bounds checks in nextitem() function allows to remotely execute arbitrary code

A vulnerability was found where incorrect bounds checks in the telnet server’s telnetd handling of short writes and urgent data, could lead to information disclosure and corruption of heap data. An unauthenticated remote attacker could exploit these bugs by sending specially crafted telnet packet...

10CVSS7.9AI score0.74513EPSS
Exploits2References4
Ubuntu
Ubuntu
added 2021/08/20 5:56 p.m.57 views

USN-5048-2: Inetutils vulnerability

USN-5048-1 fixed a vulnerability in Inetutils for Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. This update provides the corresponding fixes for Ubuntu 16.04 ESM. Original advisory details: It was discovered that Inetutils telnet server allows remote attackers to execute arbitrary code via short writes ...

10CVSS8.2AI score0.74513EPSS
Exploits2
OSV
OSV
added 2021/08/20 5:56 p.m.11 views

USN-5048-2 inetutils vulnerability

USN-5048-1 fixed a vulnerability in Inetutils for Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. This update provides the corresponding fixes for Ubuntu 16.04 ESM. Original advisory details: It was discovered that Inetutils telnet server allows remote attackers to execute arbitrary code via short writes ...

10CVSS7.2AI score0.74513EPSS
Exploits2References2
Ubuntu
Ubuntu
added 2021/08/19 7:14 p.m.121 views

USN-5048-1: Inetutils vulnerability

It was discovered that Inetutils telnet server allows remote attackers to execute arbitrary code via short writes or urgent data. An attacker could use this vulnerability to cause a DoS or possibly execute arbitrary code...

10CVSS8.2AI score0.74513EPSS
Exploits2
OSV
OSV
added 2021/08/19 7:14 p.m.9 views

USN-5048-1 inetutils vulnerability

It was discovered that Inetutils telnet server allows remote attackers to execute arbitrary code via short writes or urgent data. An attacker could use this vulnerability to cause a DoS or possibly execute arbitrary code...

10CVSS7.3AI score0.74513EPSS
Exploits2References2
OSV
OSV
added 2021/08/10 7:15 p.m.6 views

CVE-2021-38387

In Contiki 3.0, a Telnet server that silently quits before disconnection with clients leads to connected clients entering an infinite loop and waiting forever, which may cause excessive CPU consumption...

7.5CVSS5.8AI score0.00961EPSS
Exploits0References1
NVD
NVD
added 2021/08/10 7:15 p.m.23 views

CVE-2021-38387

In Contiki 3.0, a Telnet server that silently quits before disconnection with clients leads to connected clients entering an infinite loop and waiting forever, which may cause excessive CPU consumption...

7.5CVSS0.00961EPSS
Exploits0References1
Prion
Prion
added 2021/08/10 7:15 p.m.15 views

Design/Logic Flaw

In Contiki 3.0, a Telnet server that silently quits before disconnection with clients leads to connected clients entering an infinite loop and waiting forever, which may cause excessive CPU consumption...

5CVSS7.5AI score0.00961EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/08/10 7:15 p.m.3 views

CVE-2021-38387

In Contiki 3.0, a Telnet server that silently quits before disconnection with clients leads to connected clients entering an infinite loop and waiting forever, which may cause excessive CPU consumption...

7.5CVSS7AI score0.00961EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/08/10 6:59 p.m.22 views

CVE-2021-38387

In Contiki 3.0, a Telnet server that silently quits before disconnection with clients leads to connected clients entering an infinite loop and waiting forever, which may cause excessive CPU consumption...

7.7AI score0.00961EPSS
Exploits0References1
CVE
CVE
added 2021/08/10 6:59 p.m.47 views

CVE-2021-38387

CVE-2021-38387 affects Contiki 3.0, where a Telnet server that exits silently before disconnecting can cause connected clients to enter an infinite loop, leading to excessive CPU consumption. The available documents identify the vulnerable component as the Telnet server in Contiki 3.0 and describ...

7.5CVSS7.4AI score0.00961EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2021/08/10 12:0 a.m.6 views

Contiki 安全漏洞

Contiki is an open source cross-platform operating system for IoT Internet of Things devices. A security vulnerability in Contiki 3.0, where a silently exiting Telnet server before disconnecting from the client causes connected clients to enter an infinite loop and wait forever, which can lead to...

7.5CVSS7.4AI score0.00961EPSS
Exploits0References1
Rapid7 Blog
Rapid7 Blog
added 2021/07/30 6:4 p.m.314 views

Metasploit Wrap-Up

New Olympic Discipline: Hive Hunting This week, community contributor Hakyac added a new Olympic discipline to Metasploit exploit sport category, which is based on the work of community security researchers @jonasLyk and Kevin Beaumont. The rules are simple: You need to abuse a flaw in Windows 10...

8.3CVSS0.6AI score0.88158EPSS
Exploits36
Rows per page
Query Builder